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1 . V An enforcement architecture for digital rights management, wherein 
the architecture enforce\rights in protected digital content, the architecture comprising: 

a cdntent server for distributing the digital content; 
a licer\se server for issuing at least one digital license corresponding 
to and separate from the digital^ ontent; and 

a computing device for receiving the distributed digital content and 
for receiving and storing any digitali^cense corresponding to the digital content, the 
computing device having: 

a rendering application for rendering the digital content; and 
a Digital Rights^jSMahagement (DRM) system for being 
invoked by the rendering application upon su<fhr^mtoing application attempting to render 
the digital content, the DRM system for deteifaining^ whether a right to render the digital 
content in the manner sought exists based on any digital license stored in the computing 



device and corresponding to the digital content. 



2. The architecture of claim 1 , wherein tta content server is 
communicatively coupled to a network and distributes the digital content over the network. 



3. The architecture of claim 2, wherein the content server is 
25 communicatively coupled to the Internet and distributes the digital consent over the 
Internet. 



30 



4. The architecture of claim 1 , wherein the license server is> 
communicatively coupled to a network and issues the at least one digital license o\er the 
network. 



» 
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i5. The architecture of claim 4, wherein the license server is 
communicatively coupled to the Internet and issues the at least one digital license over the 
Internet. 

6. Ifae architecture of claim 1, wherein the content server is 
communicatively coupled to a portable medium writer and distributes the digital content 
on a portable medium written by the portable medium writer, the portable medium selected 
from the group consisting or\an optical storage medium and a magnetic storage medium. 



7. The architecture of claim 1 , wherein the content server distributes 
the digital content in an encrypted fc 



8. 



The architect 



- of claim 7, wherein each digital license 
corresponding to the digital content finciude 

a decryptiorfpy mat decrypts the encrypted digital content; and 
a description/of the rights conferred by the license, wherein the 
encrypted digital content cannot be decrypted^nd rendered without obtaining such license 
from the license server. 



9. The architecture of claim 8, Wherein each digital license 
corresponding to the digital content further includes \ digital signature that binds the 
license to the encrypted digital content. 



10. The architecture of claim 1, where A if the DRM system determines 
that the right to render the digital content in the manner sought does not exist based on any 
digital license stored in the computing device and corresponding to the digital content, 
such DRM system directs a computing device user to the license server to obtain a digital 
license to render such digital content in the manner sought. 
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1 1 . The architecture of claim 1 , wherein if the DRM system determines 
that the right tV render the digital content in the manner sought does not exist based on any 
digital license st^ed in the computing device and corresponding to the digital content, 
such DRM system tJ^nsparently obtains a digital license from the license server without 
any action necessary ort^he part of a computing device user. 

12. The akshitecture of claim 1, wherein the DRM system includes a 
license store for storing digitaHicenses. 

10 13. The architecture of claim 1, wherein each digital license 

corresponding to the digital content Is bound to such digital content. 



14. The architecture of 
corresponding to the digital content is bound 
1 5 private key technique. 



su< 



» wherein each digital license 
digital content by way of a public / 
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15. The architecture of cliim 1, ^herein the license server issues a 
digital license to a DRM system only if the license server trusts such DRM system to abide 
by the license. 

16. The architecture of claim 15, whereiii the content server distributes 
the digital content in an encrypted form, and wherein the DRM system includes a trusted 
black box for performing decryption and encryption functions thr such DRM system. 



25 17, The architecture of claim 16, wherein the black box includes a 

unique public / private key pair for performing the decryption and encryption functions. 



18. The architecture of claim 17, wherein the license sefyer issues each 
digital license in response to a license request from the DRM system, the license request 
30 including the black box public key, the license server encrypting at least a porHon of the 
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digifial license according to the black box public key prior to issuance of such license, 
therebV binding such license to such black box. 



19. The architecture of claim 18, wherein the content server distributes 
the digital content in an encrypted form, wherein each digital license corresponding to the 
digital content includes a decryption key that decrypts the encrypted digital content, and 
wherein the license server encrypts the decryption key in the license according to the black 
box public key. 



20. The Architecture of claim 19, wherein each digital license 
corresponding to the digital content further includes a description of the rights conferred 
by the license, wherein the encrypted digital content cannot be decrypted and rendered 
without obtaining such license fron^tfie li:ense server, and wherein the license server 
encrypts the rights description in the licer se according to the decryption key. 



21. 

version number. 



The architectureo 



claim \6, wherein the black box includes a 



22. The architecture of claim 21 Wherein the license server issues each 
digital license in response to a license request from MDRM system, the license request 
including the version number of the black box, the licence server determining prior to 
issuance of the license whether the version number of the Mack box is acceptable, the 
license server upon determining that the version number of the black box is not acceptable 
refusing to issue the license until the black box is updated, the architecture further 
comprising a black box server for providing an updated black box\to the DRM system. 



23. The architecture of claim 16, wherein the black oox includes a 
certifying authority signature as provided by an approved certifying author 



24. 



The architecture of claim 23 wherein the license server issues each 
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digital license in response to a license request from the DRM system, the license request 
including the certifying authority signature, the license server determining prior to 
issuance of the license whether the certifying authority signature is valid. 

5 \ 25. The architecture of claim 15, wherein each digital license 

corresponding No the digital content includes a description of the rights conferred by the 
license, and wherein the DRM system includes a trusted license evaluator for evaluating 
the rights description and allowing rendering of the digital content by the rendering 
application only if sufch rendering is in accordance with the rights description of the 
10 license. \ 



15 



26. The architecture of claim 1 further comprising an issued license 



ation 



database for maintaining infoi 
wherein if the computing device lbsej 
provided based on the information in 



digital licenses issued by the license server, 
a deceived license, a re-issue thereof may be 
the issued license database. 
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27. The architecture 
authoring the digital content distribui 
architecture. 




laim 1 further comprising an authoring tool for 
ed by the content server in a form amenable to the 



28. The architecture of claim 27 Vherein the authoring tool encrypts the 
digital content according to a decryption key and stores information on the digital content 
and the encryption key in a content-key database. 



25 29. The architecture of claim 28 wherein the license server accesses the 

information on the digital content and the encryption key in the\:ontent-key database prior 
to issuance of a license corresponding to the digital content, and includes the decryption 
key with such license as issued. 



30 



30. 



A method for implementing digital rights manage] 



tent, wherein the 
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metftod enforces rights in protected digital content, the method comprising: 



device ofa user; 



distributing the digital content from a content server to a computing 

receiving the distributed digital content at the computing device; 
attempting to render the digital content by way of a rendering 



application; 



invoking, by the rendering application, a Digital Rights 
Management (DRM\system upon such rendering application attempting to render the 
digital content; 

1 0 determining, by the DRM system, whether a right to render the 

digital content in the manner sought exists based on any digital license stored in the 
computing device and corresponding to the digital content; and 

if the right does not exist: 

requesting from a license server a digital license that 
15 provides such right and that correspo^d^ to and is separate from the digital content; 

lssttfngTDy tfte license server, the digital license to the DRM 

system; 

eiving, by ^yfte computing device, the issued digital license 
corresponding to the digital content from the license server; and 
20 storing the receiveckdigital license on the computing device. 

3 1 . The method of claim 30, whereiji the distributing step comprises 
distributing the digital content over a network. 



25 32. The method of claim 3 1 , wherein the distributing step comprises 

distributing the digital content over the Internet. 



33. The method of claim 30, wherein the issuing istep comprises issuing 
the digital license over a network. \ 
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34. The method of claim 33, wherein the issuing step comprises issuing 
the digit^license over the Internet. 

The method of claim 30, wherein the distributing step comprises 
5 distributing the digital content on a portable medium selected from the group consisting of 
an optical storage medium and a magnetic storage medium. 



10 



15 



36. The method of claim 30, wherein the distributing step comprises 
distributing the digital cbntent in an encrypted form. 

37. The method of claim 36, further comprising including with each 
digital license corresponding to the digital content: 

a decryption ke^that decrypts the encrypted digital content; and 
a descriptionspf the rights conferred by the license, wherein the 
encrypted digital content cannot be d^rypte\j and rendered without obtaining such license 
from the license server. 



38. The method c(f claim 3\wherein the including step further 
comprises including with each digital license corresponding to the digital content a digital 
20 signature that binds the license to the encrypted digital content. 



25 



39. The method of claim 30, wherein \he requesting a digital license 
step comprises directing, by the DRM system, a computing^device user to the license 
server to obtain a digital license to render such digital contenrip the manner sought. 

40. The method of claim 30, wherein the requesting a digital license 
step comprises transparently obtaining, by the DRM system, a digital license from the 
license server without any action necessary on the part of a computing device user. 



30 



41 . The method of claim 30, wherein the storing step composes storing, 



• 
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by tnb^DRM system, the received digital license in a license store of the DRM system. 

42. The method of claim 30, further comprising binding, by the license 
server, the dieted license to the corresponding digital content. 

43. VThe method of claim 42, comprising binding, by the license server, 
the digital license to the\orresponding digital content by way of a public / private key 
technique. 

10 44. The metnbd oflsJaim 30, wherein the issuing step comprises issuing, 

by the license server, the digital lio^nse t^the DRM system only if the license server trusts 
such DRM system to abide by the 



45. The method of clairi^44, wherein the distributing step comprises 
1 5 distributing, by the content served the digital Content in an encrypted form, and further 
comprising employing a trusted black box in the TS^RM system to perform decryption and 
encryption functions for such DRM system. 



46. The method of claim 45, wherein th&black box includes a public / 
20 private key pair, and wherein the requesting a digital license step comprises including in 
the request the black box public key, and further comprising encfypting, by the license 
server, at least a portion of the digital license according to the black box public key prior to 
issuance of such license, thereby binding such license to such black oqx. 
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47. The method of claim 46, wherein the distributing step comprises 
distributii^ the digital content in an encrypted form, and further comprising: 

including with each digital license corresponding to the digital 
content a decr^tion key that decrypts the encrypted digital content; and 

encrypting, by the license server, the decryption key in the license 
according to the blidc box public key. 



10 



15 



20 



25 



48. ^e method of claim 47, further comprising: 

including with each digital license corresponding to the digital 
content a description of the lights conferred by the license, wherein the encrypted digital 
content cannot be decrypted an<J rendered without obtaining such license from the license 
server; and 

encrypting, By pe license server, the rights description in the license 
according to the decryption key. 



49. The method 
number, and wherein the requesting 
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claim 45^ wherein the black box includes a version 
a digitalNlicense step comprises including in the 
request the version number of the black box, and further comprising: 

determining, by the licenseyserver, prior to issuance of the license 
whether the version number of the black box is acceptable; and 

upon determining that the version number of the black box is not 
acceptable, the license server refusing to issue the license until the black box is updated, 
the architecture further comprising a black box server for providing an updated black box 
to the DRM system. 

50. The method of claim 45, wherein the blacl^box includes a certifying 
authority signature as provided by an approved certifying authority ,Vid wherein the 
requesting a digital license step comprises including the certifying authority signature, the 
license server determining prior to issuance of the license whether the certifying authority 
signature is valid. 
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5 1 . The method of claim 44, wherein the issuing the digital license step 
comprises including with the digital license a description of the rights conferred by the 
license, and turtft^r compnsing: 

evaluating, by a trusted license evaluator of the DRM system, the 

rights description; an\ 

blowing rendering of the digital content by the rendering 
application only if such rendering is in accordance with the rights description of the 
license. 



15 



20 
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52. The metholi of claim 30 further comprising maintaining information 
on digital licenses issued by the liceksdTSwver in an issued license database, wherein if the 
computing device loses a received license, a reissue thereof may be provided based on the 
information in the issued license datahfl 



53. The method of claim 30 further comprising authoring, by an 
authoring tool, the digital content distributed b\ the content server in a form amenable to 
the architecture. 

54. The method of claim 53 wherein the authoring step comprises: 
encrypting the digital content according to a decryption key; and 
storing information on the digital content and the encryption key in 

a content-key database. 



55. The method of claim 54 wherein the issuing the digital license step 

comprises: 

accessing, by the license server, the informatidn on the digital 
content and the encryption key in the content-key database prior to issu^ce of a license 
30 corresponding to the digital content; and 



• 
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including the decryption key with such license as issued. 
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56. An enforcement architecture for digital rights management, wherein 
the architecture enforces rights irrorotected digital content, the architecture comprising: 

5 a content server communicatively coupled to a network for 

distributing the digital content over thetaetwork; 

a license server foV issuing at least one digital license corresponding 
to and separate from the digital content, th& license server being communicatively coupled 
to the network for issuing the at least one dig^al license over the network; and 
10 a computing device comi&unicajfcively coupled to the network for 

receiving the distributed digital content and for receiving any digital license corresponding 
to the digital content, the computing device also ha\ 

a memory for stori ng any\ii&ital l icense corresponding to the 

digital content; 

15 a rendering applic^tjbn for attempting to render the digital 

content; and 

a Digital Rights Management (ORM) system for being 
invoked by the rendering application upon such rendering application attempting to render 
the digital content, the DRM system for determining whether a rrght to render the digital 
20 content in the manner sought exists based on any digital license stored in the computing 
device and corresponding to the digital content. 

57. The architecture of claim 56, wherein the content^erver is 
communicatively coupled to the Internet and distributes the digital conten{ over the 

25 Internet. 



58. The architecture of claim 56, wherein the license serveAis 
communicatively coupled to the Internet and issues the at least one digital license over the 
Internet. 



30 
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59. The architecture of claim 56, wherein the content server is also 
communicatively coupled to a portable medium writer and distributes the digital content 
on a portable medium written by the portable medium writer, the portable medium selected 
from the group consisting of an optical storage medium and a magnetic storage medium, 
and wherein the confuting device includes a portable medium reader corresponding to the 
portable medium writer for receiving and reading the portable medium. 



10 
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60. Th&architecture of claim 56, wherein the content server distributes 
the digital content in an encwpted form. 

6 1 . The architecture of claim 60^ wherein each digital license 
corresponding to the digital contort includes: 



a decryption \py thai 
a description 
encrypted digital content cannot be c|ec 
from the license server. 



decrypts the encrypted digital content; and - 
its conferred by the license, wherein the 
and rendered without obtaining such license 
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62. The architecture of claim tSl, wherein each digital license 
corresponding to the digital content further include!^ a digital signature that binds the 
license to the encrypted digital content. 
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63. The architecture of claim 56, wherein if the DRM system 
determines that the right to render the digital content in the manner sought does not exist 
based on any digital license stored in the computing device and corresponding to the 
digital content, such DRM system directs a computing device user to the license server to 
obtain a digital license to render such digital content in the mannensought. 
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64. The architecture of claim 56, wherein if the DRM^ystem 
determines that the right to render the digital content in the manner sought does not exist 
based on any digital license stored in the computing device and correspondinato the 
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digits&content, such DRM system transparently obtains a digital license from the license 
server without any action necessary on the part of a computing device user. 

The architecture of claim 56, wherein the DRM system includes a 
5 license store for string digital licenses. 

66. The architecture of claim 56, wherein each digital license 
corresponding to the digitaj content is bound to such digital content. 

1 0 67. The architecture of claim 66, wherein each digital license 

corresponding to the digital content is bouqd to such digital content by way of a public / 
private key technique. 



68. The architecture ol£claim\5 6, ^herein the license server issues a 
15 digital license to a DRM system only if the^cens^ server trusts such DRM system to abide 

by the license. 

69. The architecture of claim 6& wherein the content server distributes 
the digital content in an encrypted form, and whereinS^he DRM system includes a trusted 

20 black box for performing decryption and encryption functions for such DRM system. 



70. The architecture of claim 69, whereiiMhe black box includes a 
unique public / private key pair for performing the decryptionWd encryption functions. 



25 
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71 . The architecture of claim 70, wherein the license server issues each 
digital license in response to a license request from the DRM systenmhe license request 
including the black box public key, the license server encrypting at least^a portion of the 
digital license according to the black box public key prior to issuance of su^h license, 
thereby binding such license to such black box. 
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The architecture of claim 71, wherein the content server distributes 



the digital oontent in an encrypted form, wherein each digital license corresponding to the 
digital contenlincludes a decryption key that decrypts the encrypted digital content, and 
wherein the license server encrypts the decryption key in the license according to the black 
box public key. 



10 



73. The architecture of claim 72, wherein each digital license 
corresponding to the digital content further includes a description of the rights conferred 
by the license, wherein the encrypted digital content cannot be decrypted and rendered 
without obtaining such licens^from the license server, and wherein the license server 
encrypts the rights description uj the license according to the decryption key. 



15 



20 



74. 

version number. 



The architect 



[ e of clJtim 69, wherein the black box includes a 



75. The architecture of cWn 74 wherein the license server issues each 
digital license in response to a license request irom the DRM system, the license request 
including the version number of the black box, the license server determining prior to 
issuance of the license whether the version numbenpf the black box is acceptable, the 
license server upon determining that the version number of the black box is not acceptable 
refusing to issue the license until the black box is updated, the architecture further 
comprising a black box server for providing an updated Mack box to the DRM system. 



76. The architecture of claim 69, wherein trie black box includes a 
25 certifying authority signature as provided by an approved certifying authority. 
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77. The architecture of claim 76 wherein the licenSs server issues each 
digital license in response to a license request from the DRM system, tnfe license request 
including the certifying authority signature, the license server determining\rior to 
issuance of the license whether the certifying authority signature is valid. 
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78. The architecture of claim 68, wherein each digital license 
correspondinkto the digital content includes a description of the rights conferred by the 
license, and wherein the DRM system includes a trusted license evaluator for evaluating 
the rights description and allowing rendering of the digital content by the rendering 
application only if suph rendering is in accordance with the rights description of the 
license. 



10 
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79. Thfe architecture of claim 56 further comprising an issued license 
database for maintaining information on digital licenses issued by the license server, 
wherein if the computing device loses a received license, a re-issue thereof may be 
provided based on the infonnatipnils^ie issued license database. 



80. The architi 
for authoring the digital content di 
architecture. 



re-trf^ta^m^ comprising an authoring tool 

tributed byjthe content server in a form amenable to the 



20 



8 1 . The architecture of claftn 80 wherein the authoring tool encrypts the 
digital content according to a decryption key an^ stores information on the digital content 
and the encryption key in a content-key databaseA 



25 



82. The architecture of claim 81 ^herein the license server accesses the 
information on the digital content and the encryption fcey in the content-key database prior 
to issuance of a license corresponding to the digital content, and includes the decryption 
key with such license as issued. 
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83. An enforcement architecture for digital rights management, wherein 
the architecture enforces rights in protected digital content, the architecture comprising: 

an authoring tool for authoring the digital conten^in a form 
amenable to the architecture; 



10 
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a content server for receiving the digital content from the authoring 
tool and di^ributing the digital content; and 

a license server for issuing at least one digital license corresponding 
to and separate ffcmi the digital content, wherein a computing device receives the 
distributed digital Content and receives and stores any digital license corresponding to the 
digital content, the computing device having a rendering application for rendering the 
digital content; and a Digital Rights Management (DRM) system for being invoked by the 
rendering application upofc such rendering application attempting to render the digital 
content, the DRM system for determining whether a right to render the digital content in 
the manner sought exists based on any digital license stored in the computing device and 
corresponding to the digital content. 



15 



84. The architechiMJ&f claim 83, wherein the content server is 



communicatively coupled to a netwc 



85. The architect 



. distributes the digital content over the network. 



rfe of claim 84, wherein the content server is 
communicatively coupled to the Internet and^distributes the digital content over the 
Internet. 



20 86. The architecture of claim 83V wherein the license server is 

communicatively coupled to a network and issues th\at least one digital license over the 
network. 

87. The architecture of claim 86, where^i the license server is 
25 communicatively coupled to the Internet and issues the at le^t one digital license over the 
Internet. 
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88. The architecture of claim 83, wherein the content server is 
communicatively coupled to a portable medium writer and distributes the digital content 
on a portable medium written by the portable medium writer, the portableanedium selected 
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from\i*e group consisting of an optical storage medium and a magnetic storage medium. 

39. The architecture of claim 1, wherein the content server distributes 
the digital conterityin an encrypted form. 
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90. The architecture of claim 89, wherein each digital license 
corresponding to the digitalscontent includes: 

a decryption key that decrypts the encrypted digital content; and 
a description of the rights conferred by the license, wherein the 
encrypted digital content cannot decrypted and rendered without obtaining such license 
from the license server. 



15 



91 . The architectureN&f claftn 90, wherein each digital license 
corresponding to the digital content further includes a digital signature that binds the 
license to the encrypted digital conter 



20 



92. The architecture of claiiAy83, wherein a computing device user is 
directed to the license server by the pRM system\o obtain a digital license to render the 
digital content in the manner sought if the DRM system determines that the right to render 
such digital content in the manner sought does not exist based on any digital license stored 
in the computing device and corresponding to the digital content. 



93. The architecture of claim 83, wherem the DRM system 
transparently obtains a digital license from the license serves without any action necessary 
25 on the part of a computing device user if the DRM system determines that the right to 
render the digital content in the manner sought does not exist based on any digital license 
stored in the computing device and corresponding to the digital content. 



94. The architecture of claim 83, wherein each digital license 
30 corresponding to the digital content is bound to such digital content. 
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95. The architecture of claim 94, wherein each digital license 
correspondingVo the digital content is bound to such digital content by way of a public / 
private key technique. 

96. \ The architecture of claim 83, wherein the license server issues a 
digital license to a DRJtyl system only if the license server trusts such DRM system to abide 
by the license. 

10 97. The aAthitecture of claim 96, wherein the content server distributes 

the digital content in an encrypted form, wherein the DRM system includes a trusted black 
box for performing decryption anii encryption functions for such DRM system, wherein 
the black box includes a unique public / private key pair for performing the decryption and 
encryption functions, and wherein the license, server issues each digital license in response 
15 to a license request from the DRM systep\, the\icensejequest including the black box 
public key, the license server encryptin^afl^ast \ portion of the digital license according 
to the black box public key prior to issuance d(su^h license, thereby binding such license 
to such black box. 



20 98. The architecture of claim 97,wherein the content server distributes 

the digital content in an encrypted form, wherein eacft digital license corresponding to the 
digital content includes a decryption key that decrypts the encrypted digital content, and 
wherein the license server encrypts the decryption key inythe license according to the black 
box public key. 

25 

99. The architecture of claim 98, wherein eWi digital license 
corresponding to the digital content further includes a description of the rights conferred 
by the license, wherein the encrypted digital content cannot be decrypted and rendered 
without obtaining such license from the license server, and wherein me license server 
30 encrypts the rights description in the license according to the decryption^ key. 
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100. The architecture of claim 97, wherein the black box includes a 
version numbek and wherein the license server issues each digital license in response to a 
license request from the DRM system, the license request including the version number of 
the black box, the license server determining prior to issuance of the license whether the 
version number of thetolack box is acceptable, the license server upon determining that the 
version number of the Mack box is not acceptable refusing to issue the license until the 
black box is updated, theWchitecture further comprising a black box server for providing 
an updated black box to thit DRM system. 

101. The architecture of claim 97, wherein the black box includes a 



certifying authority signature 
the license server issues each digfi 



fcvided by an approved certifying authority, and wherein 
license in response to a license request from the DRM 



system, the license request includi la the^certifying authority signature, the license server 



determining prior to issuance of tl 
valid. 



letKerthe certifying authority signature is 



1 02. The architecture of clkim 96, wherein each digital license 
corresponding to the digital content includes ^description of the rights conferred by the 
license, and wherein the DRM system includes ^trusted license evaluator for evaluating 
the rights description and allowing rendering of tne digital content by the rendering 
application only if such rendering is in accordance ^ith the rights description of the 
license. 



25 103. The architecture of claim 83 further comprising an issued license 

database for maintaining information on digital licenses issued by the license server, 
wherein if the computing device loses a received license, a re-isfcue thereof may be 
provided based on the information in the issued license database. 



30 



104. The architecture of claim 83 wherein the authoring tool encrypts the 
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digital content according to a decryption key and stores information on the digital content 
and the encryption key in Content-key database. 



105. The architecture oT^ahn 104 wherein the license server accesses 
the information on the digital content and the enfcs^ption key in the content-key database 
prior to issuance of a license corresponding to the digital content, and includes the 
decryption key with such license as issued. 




